Information Security Analyst

BankNewportMiddletown, RI
Hybrid

About The Position

The Information Security Analyst supports the Bank’s information security risk management and compliance program, with a focus on vendor risk, technology risk, third-party due diligence, access reviews, contract support, control monitoring, and audit-ready documentation. This role helps ensure vendors, technologies, systems, and business processes are assessed, documented, monitored, reported, and assigned to accountable owners in accordance with Bank policies, regulatory expectations, and program requirements. The Analyst works with Information Security, Technology, Risk Management, Legal, Procurement, business owners, system administrators, and other partners to support a consistent, well-documented risk management model focused on ownership, follow-up, issue tracking, remediation, and continuous improvement. The ideal candidate is detail-oriented, organized, collaborative, and able to evaluate risks in a practical manner.

Requirements

  • Bachelor’s degree or its equivalent in specialized course work and training.
  • Two or more years of relevant banking experience or equivalent.
  • General knowledge of banking laws and regulations (experience with regulatory examinations and Gramm-Leach-Bliley Act preferred).
  • Strong analytical and decision-making skills.
  • Ability to conduct effective research and analysis, and clearly document supported conclusions and opinions.
  • Excellent communication, interpersonal, and organizational skills.
  • Must be able to multitask, act independently and make decisions.
  • Strong PC skills.

Nice To Haves

  • Experience with vendor management and project management is a plus.
  • Exposure to bank related operations and products.
  • Project management experience a plus.
  • Microsoft SharePoint a plus.
  • Knowledge of Bank systems a plus.

Responsibilities

  • Assists the Information Security Officer as needed in managing the Bank’s Information Security program.
  • Works independently to ensure effective management of the overall program and system, including developing and providing reporting, ensuring data quality and assisting with audit responses as required.
  • Responsible to manage the Bank’s Vendor Management program and system application, under the direct guidance of the Information Security Officer.
  • Works independently to ensure effective management of the overall program and system, including developing and providing reporting, ensuring data quality and consistency, and working directly with business units to assist in their vendor management responsibilities and use of the vendor management system.
  • Identify opportunities for enhancement and improvements to the process and related guidance.
  • Maintain related policies, procedures and guidance and ensure they remain current with regulatory and best practices expectations.
  • Responsible to assist the Information Security Officer in the development, implementation and management of the Bank’s Project Management Life Cycle and Business Initiative Due Diligence process.
  • Support the Information Security Officer in the management of the Bank’s Business Continuity Planning (BCP).
  • Responsibilities may include working with business units to review and update their individual plans, participating, coordinating and assisting with BCP testing and reporting of results, supporting the Business Impact Analysis process, and assisting in management and board reporting.
  • Responsible to obtain and maintain proficient knowledge of federal and state laws and regulations applicable to the Bank in the areas of vendor and third-party management, risk management, business continuity planning, and other areas of responsibility.
  • Obtains and maintains knowledge of Bank services, policies and procedures.
  • Researches regulatory, methodology and best practices questions as they arise during the course of business and provides opinions and recommendations based upon research.
  • Provides guidance and direction to business areas, as needed.
  • Also responsible to make related recommendations for policy and procedural changes, as appropriate.
  • Available to assist the Information Security Officer and/or the Director of Compliance & Risk Management in conducting research, interpreting laws and regulations, and forming opinions.
  • Responsible for the coordination of various risk assessments, including a bank-wide non-electronic customer information risk assessment.
  • Activities may include coordinating or conducting risk assessments, or sections thereof, reviewing risk assessment documentation and conclusions, tracking and monitoring risk assessment activities, and developing, implementing and tracking action items relating to completed risk assessments.
  • Ability to effectively identify and assess compliance, legal and reputational risks and recommend appropriate risk mitigating actions.
  • Acts as System Administrator and primary application specialist for all Department third-party applications.
  • Responsible for the user access controls, security, maintenance, and updates of said applications and Department.
  • Also manages the Business Continuity Planning documentation for the Department.
  • Keeps abreast of compliance, industry and best practices activities through attendance at professional association meetings, seminars, and workshops, as appropriate, as well as through reading publications and newsletters.
  • Represents the Bank through participation in various community and industry related activities.
  • Actively promotes interest in the Bank whenever and wherever possible.
  • Performs related and unrelated duties as may be required.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service